Lucene search
K

npmjs-url-parse: Improper validation of protocol of the returned URL

🗓️ 25 Mar 2020 19:34:38Reported by RedHatType 
redhat
 redhat
🔗 access.redhat.com👁 6 Views

Validation flaw in node javascript parse sets protocol to location, bypassing URL security checks.

Related
Packages
Refs
ReporterTitlePublishedViews
Family
CVE
CVE-2020-8124
4 Feb 202019:08
cve
Cvelist
CVE-2020-8124
4 Feb 202019:08
cvelist
Debian CVE
CVE-2020-8124
4 Feb 202019:08
debiancve
EUVD
EUVD-2022-0441
3 Oct 202520:07
euvd
Github Security Blog
Improper Validation and Sanitization in url-parse
6 Jan 202220:30
github
Hacker One
Node.js third-party modules: [url-parse] Improper Validation and Sanitization
14 Feb 201922:41
hackerone
NVD
CVE-2020-8124
4 Feb 202020:15
nvd
OpenVAS
Ubuntu: Security Advisory (USN-5973-1)
28 Mar 202300:00
openvas
OSV
DEBIAN-CVE-2020-8124
4 Feb 202020:15
osv
OSV
GHSA-46C4-8WRP-J99V Improper Validation and Sanitization in url-parse
6 Jan 202220:30
osv
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Red Hat Enterprise Linux7x86_64jaeger0:v1.13.1.redhat6-1.el7jaeger-0:v1.13.1.redhat6-1.el7.x86_64.rpm
Red Hat Enterprise Linux7x86_64kiali0:v1.0.10.redhat1-1.el7kiali-0:v1.0.10.redhat1-1.el7.x86_64.rpm

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

28 Jun 2026 12:08Current
5.8Medium risk
Vulners AI Score5.8
CVSS 25
CVSS 3.15.3
EPSS0.01652
6